program:
syz_emit_ethernet(0x76, &(0x7f0000000000)={@broadcast, @remote, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, '\x00\x00\b', 0x40, 0x3a, 0x0, @empty, @mcast2, {[], @pkt_toobig={0x2, 0x0, 0x0, 0x0, {0x0, 0x6, 'WQX', 0x0, 0x33, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, @mcast2, [@routing={0x4}], "b645777d1f9a58ea"}}}}}}}, 0x0)
perf_event_open(&(0x7f0000000300)={0x1, 0x80, 0x2, 0x0, 0x0, 0x0, 0x0, 0x1, 0x400001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x8}, 0x7602, 0x0, 0x0, 0x9, 0x200, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
getsockopt$bt_BT_SNDMTU(r0, 0x112, 0xc, &(0x7f0000000140), 0x0)

[   84.857605][ T5309] Bluetooth: hci0: command tx timeout
[   85.567760][ T5334] ------------[ cut here ]------------
[   85.570311][ T5334] WARNING: CPU: 0 PID: 5334 at kernel/events/core.c:7211 perf_pending_task+0x319/0x400
[   85.574973][ T5334] Modules linked in:
[   85.576539][ T5334] CPU: 0 UID: 0 PID: 5334 Comm: syz.0.0 Not tainted 6.16.0-rc2-syzkaller-00378-gb67ec639010f #0 PREEMPT(full) 
[   85.580964][ T5334] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   85.586167][ T5334] RIP: 0010:perf_pending_task+0x319/0x400
[   85.589076][ T5334] Code: 85 8f 00 00 00 41 fe 4d 00 eb 05 e8 21 4f cd ff 48 83 c4 18 5b 41 5c 41 5d 41 5e 41 5f 5d e9 4e 34 76 09 cc e8 08 4f cd ff 90 <0f> 0b 90 41 80 3c 1c 00 0f 85 02 ff ff ff e9 05 ff ff ff 44 89 e1
[   85.598861][ T5334] RSP: 0018:ffffc9000d5779d0 EFLAGS: 00010293
[   85.601554][ T5334] RAX: ffffffff81f2fe18 RBX: dffffc0000000000 RCX: ffff888000fd2440
[   85.605264][ T5334] RDX: 0000000000000000 RSI: 00000000749ace0f RDI: 0000000000000000
[   85.608761][ T5334] RBP: 00000000749ace0f R08: ffffffff8fa10af7 R09: 1ffffffff1f4215e
[   85.612176][ T5334] R10: dffffc0000000000 R11: ffffffff81f2fb00 R12: 1ffff110035f410f
[   85.615770][ T5334] R13: ffff888000fd2440 R14: ffff88801afa0ad8 R15: ffff88801afa0878
[   85.619733][ T5334] FS:  0000000000000000(0000) GS:ffff88808d251000(0000) knlGS:0000000000000000
[   85.623456][ T5334] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   85.626542][ T5334] CR2: 00007ff67a785538 CR3: 00000000513bf000 CR4: 0000000000352ef0
[   85.629835][ T5334] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[   85.633299][ T5334] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[   85.636921][ T5334] Call Trace:
[   85.638389][ T5334]  <TASK>
[   85.639618][ T5334]  task_work_run+0x1d1/0x260
[   85.641430][ T5334]  ? __pfx_task_work_run+0x10/0x10
[   85.643535][ T5334]  ? kmem_cache_free+0x18f/0x400
[   85.645766][ T5334]  do_exit+0x6b5/0x22e0
[   85.647627][ T5334]  ? __pfx_do_exit+0x10/0x10
[   85.649625][ T5334]  ? proc_coredump_connector+0x172/0x4b0
[   85.651982][ T5334]  ? __pfx_proc_coredump_connector+0x10/0x10
[   85.654578][ T5334]  do_group_exit+0x21c/0x2d0
[   85.656465][ T5334]  ? lockdep_hardirqs_on+0x9c/0x150
[   85.658791][ T5334]  get_signal+0x1286/0x1340
[   85.660716][ T5334]  arch_do_signal_or_restart+0x9a/0x750
[   85.663059][ T5334]  ? __rseq_handle_notify_resume+0x37e/0x11f0
[   85.665642][ T5334]  ? perf_pending_task+0x2da/0x400
[   85.667574][ T5334]  ? __pfx_arch_do_signal_or_restart+0x10/0x10
[   85.670179][ T5334]  ? exit_to_user_mode_loop+0x40/0x110
[   85.672610][ T5334]  exit_to_user_mode_loop+0x75/0x110
[   85.675064][ T5334]  do_syscall_64+0x2bd/0x3b0
[   85.677234][ T5334]  ? lockdep_hardirqs_on+0x9c/0x150
[   85.679388][ T5334]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   85.682171][ T5334]  ? clear_bhb_loop+0x60/0xb0
[   85.684774][ T5334]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   85.687287][ T5334] RIP: 0033:0x7ff67a58e929
[   85.689118][ T5334] Code: Unable to access opcode bytes at 0x7ff67a58e8ff.
[   85.691983][ T5334] RSP: 002b:00007ff67b469038 EFLAGS: 00000246 ORIG_RAX: 0000000000000037
[   85.695740][ T5334] RAX: 0000000000000000 RBX: 00007ff67a7b5fa0 RCX: 00007ff67a58e929
[   85.699070][ T5334] RDX: 000000000000000c RSI: 0000000000000112 RDI: 0000000000000005
[   85.702394][ T5334] RBP: 00007ff67a610b39 R08: 0000000000000000 R09: 0000000000000000
[   85.705838][ T5334] R10: 0000200000000140 R11: 0000000000000246 R12: 0000000000000000
[   85.709044][ T5334] R13: 0000000000000000 R14: 00007ff67a7b5fa0 R15: 00007ffd9def25c8
[   85.712177][ T5334]  </TASK>
[   85.713539][ T5334] Kernel panic - not syncing: kernel: panic_on_warn set ...
[   85.716666][ T5334] CPU: 0 UID: 0 PID: 5334 Comm: syz.0.0 Not tainted 6.16.0-rc2-syzkaller-00378-gb67ec639010f #0 PREEMPT(full) 
[   85.721409][ T5334] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   85.725946][ T5334] Call Trace:
[   85.727288][ T5334]  <TASK>
[   85.728547][ T5334]  dump_stack_lvl+0x99/0x250
[   85.730486][ T5334]  ? __asan_memcpy+0x40/0x70
[   85.732450][ T5334]  ? __pfx_dump_stack_lvl+0x10/0x10
[   85.734594][ T5334]  ? __pfx__printk+0x10/0x10
[   85.736708][ T5334]  panic+0x2db/0x790
[   85.738341][ T5334]  ? __pfx_panic+0x10/0x10
[   85.740159][ T5334]  __warn+0x31b/0x4b0
[   85.741827][ T5334]  ? perf_pending_task+0x319/0x400
[   85.743871][ T5334]  ? perf_pending_task+0x319/0x400
[   85.746040][ T5334]  report_bug+0x2be/0x4f0
[   85.747924][ T5334]  ? perf_pending_task+0x319/0x400
[   85.750205][ T5334]  ? perf_pending_task+0x319/0x400
[   85.752400][ T5334]  ? perf_pending_task+0x31b/0x400
[   85.754554][ T5334]  handle_bug+0x84/0x160
[   85.756298][ T5334]  exc_invalid_op+0x1a/0x50
[   85.758260][ T5334]  asm_exc_invalid_op+0x1a/0x20
[   85.760432][ T5334] RIP: 0010:perf_pending_task+0x319/0x400
[   85.762991][ T5334] Code: 85 8f 00 00 00 41 fe 4d 00 eb 05 e8 21 4f cd ff 48 83 c4 18 5b 41 5c 41 5d 41 5e 41 5f 5d e9 4e 34 76 09 cc e8 08 4f cd ff 90 <0f> 0b 90 41 80 3c 1c 00 0f 85 02 ff ff ff e9 05 ff ff ff 44 89 e1
[   85.771174][ T5334] RSP: 0018:ffffc9000d5779d0 EFLAGS: 00010293
[   85.773692][ T5334] RAX: ffffffff81f2fe18 RBX: dffffc0000000000 RCX: ffff888000fd2440
[   85.777114][ T5334] RDX: 0000000000000000 RSI: 00000000749ace0f RDI: 0000000000000000
[   85.781083][ T5334] RBP: 00000000749ace0f R08: ffffffff8fa10af7 R09: 1ffffffff1f4215e
[   85.784392][ T5334] R10: dffffc0000000000 R11: ffffffff81f2fb00 R12: 1ffff110035f410f
[   85.787680][ T5334] R13: ffff888000fd2440 R14: ffff88801afa0ad8 R15: ffff88801afa0878
[   85.791059][ T5334]  ? __pfx_perf_pending_task+0x10/0x10
[   85.793793][ T5334]  ? perf_pending_task+0x318/0x400
[   85.796017][ T5334]  task_work_run+0x1d1/0x260
[   85.798055][ T5334]  ? __pfx_task_work_run+0x10/0x10
[   85.800317][ T5334]  ? kmem_cache_free+0x18f/0x400
[   85.802417][ T5334]  do_exit+0x6b5/0x22e0
[   85.804750][ T5334]  ? __pfx_do_exit+0x10/0x10
[   85.807366][ T5334]  ? proc_coredump_connector+0x172/0x4b0
[   85.809833][ T5334]  ? __pfx_proc_coredump_connector+0x10/0x10
[   85.812419][ T5334]  do_group_exit+0x21c/0x2d0
[   85.818236][ T5334]  ? lockdep_hardirqs_on+0x9c/0x150
[   85.820490][ T5334]  get_signal+0x1286/0x1340
[   85.822510][ T5334]  arch_do_signal_or_restart+0x9a/0x750
[   85.824826][ T5334]  ? __rseq_handle_notify_resume+0x37e/0x11f0
[   85.827387][ T5334]  ? perf_pending_task+0x2da/0x400
[   85.829631][ T5334]  ? __pfx_arch_do_signal_or_restart+0x10/0x10
[   85.832224][ T5334]  ? exit_to_user_mode_loop+0x40/0x110
[   85.834556][ T5334]  exit_to_user_mode_loop+0x75/0x110
[   85.836859][ T5334]  do_syscall_64+0x2bd/0x3b0
[   85.838956][ T5334]  ? lockdep_hardirqs_on+0x9c/0x150
[   85.841289][ T5334]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   85.843823][ T5334]  ? clear_bhb_loop+0x60/0xb0
[   85.845960][ T5334]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   85.848502][ T5334] RIP: 0033:0x7ff67a58e929
[   85.850492][ T5334] Code: Unable to access opcode bytes at 0x7ff67a58e8ff.
[   85.853506][ T5334] RSP: 002b:00007ff67b469038 EFLAGS: 00000246 ORIG_RAX: 0000000000000037
[   85.857194][ T5334] RAX: 0000000000000000 RBX: 00007ff67a7b5fa0 RCX: 00007ff67a58e929
[   85.860505][ T5334] RDX: 000000000000000c RSI: 0000000000000112 RDI: 0000000000000005
[   85.863865][ T5334] RBP: 00007ff67a610b39 R08: 0000000000000000 R09: 0000000000000000
[   85.867285][ T5334] R10: 0000200000000140 R11: 0000000000000246 R12: 0000000000000000
[   85.870678][ T5334] R13: 0000000000000000 R14: 00007ff67a7b5fa0 R15: 00007ffd9def25c8
[   85.874090][ T5334]  </TASK>
[   85.875821][ T5334] Kernel Offset: disabled
[   85.877670][ T5334] Rebooting in 86400 seconds..